Tenable Network Security

	Nessus
	Download
	Plugins
	Newest Plugins
	Obtain an activation code
	View all plugins
	Search
	Documentation
	Register
	Buy Now
	ProfessionalFeed Support
	Bugs
	All the Tenable Products

OpenLDAP SASL authcid Name BIND Request DoS

This script is Copyright (C) 2006-2010 Tenable Network Security, Inc.


Family	Denial of Service
Nessus Plugin ID	23625 (openldap_sasl_bind_dos.nasl)
Bugtraq ID	20939
CVE ID	CVE-2006-5779

Description:
Synopsis : The remote LDAP server is prone to a denial of service attack. Description : The remote host appears to be running OpenLDAP, an open-source LDAP directory implementation. The version of OpenLDAP installed on the remote host fails to handle malformed SASL bind requests. An unauthenticated attacker can leverage this issue to crash the LDAP server on the affected host. See also : http://www.securityfocus.com/archive/1/450728/30/0/threaded http://www.openldap.org/its/index.cgi/Software%20Bugs?id=4740 http://www.openldap.org/software/release/changes.html Solution : Upgrade to OpenLDAP 2.3.29 or later. Risk factor : Medium / CVSS Base Score : 5.0 (CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

This is the web site for the Nessus Vulnerability Scanner from Tenable Network Security. If you are looking for the probabilistic analysis software from Southwest Research Institute, please visit www.nessus.swri.org

OpenLDAP SASL authcid Name BIND Request DoS